From 3d614616a3e14f818b574417e7325d1b1bb31ca6 Mon Sep 17 00:00:00 2001
From: Daniel Brahneborg <daniel@braxo.se>
Date: Mon, 8 Dec 2025 07:26:03 +0100
Subject: [PATCH] README: DENY => DENY IN

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index d511ffb..c2d5bcc 100644
--- a/README.md
+++ b/README.md
@@ -31,7 +31,7 @@ Then create a script that performs the tasks below. This can be run by cron.
 1. Collect all IP addresses and ranges to block into a new file, say `autofw.badips`. It may be a good idea to filter out entries in the whitelist.
 1. Run `ufw insert 1 deny from $ip` for each entry in `autofw.badips`. The ufw tool will automatically ignore duplicates.
 1. Collect all blacklisted addresses using the following command:
-``ufw status verbose | grep DENY | awk '{print $4}' > autofw.blacklist``
+``ufw status verbose | grep "DENY IN" | awk '{print $4}' > autofw.blacklist``
 1. Run `./autofw > ufw.updates`.
 1. Run the `./ufw.updates` script.
 1. Finally run `ufw reload` to activate the new rules.